Presentation is loading. Please wait.

Presentation is loading. Please wait.

System state models.

Published byΕυφροσύνη Βουρδουμπάς Modified over 5 years ago

Similar presentations

Presentation on theme: "System state models."— Presentation transcript:

1 System state models

2 Bell-LaPadula Confidentiality model
Subjects and objects Simple security property Only read information at current or lower levels NO READ UP *-property Can write information at higher but not read it NO WRITE UP Strong * property Only access information (R+W) at current level

3 BLP problems Does not address confidentiality issues: need to know
restrict individuals objects based on subject needs

4 Biba Integrity Model Focus is to prevent corruption
Assigns integrity levels to subjects and objects

5 Bell LaPadula verses Biba
Property Bell LaPadula Biba Model focus Confidentiality Integrity Simple security property No READ up A subject cannot observe an object of lower integrity *-property No WRITE down A subject cannot modify an object of higher integrity Example Secret military documents Two decimal places in FX calculations

6 Clark-Wilson Transaction Integrity model
Prevents undesirable changes by authorised subjects Separation of duties Ensures external consistency by the SOD check For internal consistency, the steps within the transaction must be well formed

7 Lipner model Model 1 (based on BLP) Model 2 (based on BLP and Biba)
assigns subjects to one of two security levels and one of four job categories Subjects are confined to data in their domains Model 2 (based on BLP and Biba) Programs control access to data Addresses confidentiality and integrity

8 Brewer-Nash (Chinese Wall)

Download ppt "System state models."

Similar presentations

George Mason University

George Mason University
ACCESS-CONTROL MODELS

ACCESS-CONTROL MODELS
TOPIC CLARK-WILSON MODEL Ravi Sandhu.

TOPIC CLARK-WILSON MODEL Ravi Sandhu.
Information Flow and Covert Channels November, 2006.

Information Flow and Covert Channels November, 2006.
1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.

1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.
ISA 562 Information System Security

ISA 562 Information System Security
Multilevel Security (MLS) Database Security and Auditing.

Multilevel Security (MLS) Database Security and Auditing.
CMSC 414 Computer (and Network) Security Lecture 12 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 12 Jonathan Katz.
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
Chinese wall model in the internet Environment

Chinese wall model in the internet Environment
Verifiable Security Goals

Verifiable Security Goals
1 Clark Wilson Implementation Shilpa Venkataramana.

1 Clark Wilson Implementation Shilpa Venkataramana.
Information Systems Security Security Architecture Domain #5.

Information Systems Security Security Architecture Domain #5.
CS526Topic 21: Integrity Models1 Information Security CS 526 Topic 21: Integrity Protection Models.

CS526Topic 21: Integrity Models1 Information Security CS 526 Topic 21: Integrity Protection Models.
User Domain Policies.

User Domain Policies.
Policy, Models, and Trust 1. Security Policy A security policy is a well-defined set of rules that include the following: Subjects: the agents who interact.

Policy, Models, and Trust 1. Security Policy A security policy is a well-defined set of rules that include the following: Subjects: the agents who interact.
The top ten signs that your classmate is a computer hacker 10. You ticked him off once and your next phone bill was $20,000. 9. He's won the Publisher's.

The top ten signs that your classmate is a computer hacker 10. You ticked him off once and your next phone bill was $20, He's won the Publisher's.
CH14 – Protection / Security. Basics Potential Violations – Unauthorized release, modification, DoS External vs Internal Security Policy vs Mechanism.

CH14 – Protection / Security. Basics Potential Violations – Unauthorized release, modification, DoS External vs Internal Security Policy vs Mechanism.
© G. Dhillon, IS Department Virginia Commonwealth University Principles of IS Security Formal Models.

© G. Dhillon, IS Department Virginia Commonwealth University Principles of IS Security Formal Models.
3/16/2004Biba Model1 Biba Integrity Model Presented by: Nathan Balon Ishraq Thabet.

3/16/2004Biba Model1 Biba Integrity Model Presented by: Nathan Balon Ishraq Thabet.

Similar presentations

Ads by Google